Overview

overview

7

Static

static

3

driver-mag...-0.exe

windows7-x64

7

driver-mag...-0.exe

windows10-2004-x64

7

Resubmissions

12-02-2024 20:06

240212-yvjapabd8w 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    driver-magician-6-0.exe

  • Size

    5.9MB

  • Sample

    240212-yvjapabd8w

  • MD5

    17fc5c203f4e8b3e3b7a463fd939f57a

  • SHA1

    12ec48b63e89cb78fb47571e9c27b0a4e562bc82

  • SHA256

    b5b23f72ca2b97b42bc66040ffcfcddb8e5cf0e164464a5631ef2dd8f017985b

  • SHA512

    3ebfd9444dac6becfafcdf060bf543e2ab6765c2f9e6b78b7877fc21afea3e2e8ca6f21045baaa8f66ae0571ab688b4efcb177fb0dbc6c5839ceb4c9452a3de3

  • SSDEEP

    98304:FkLyusBFthivcrmEtw2r9mfuNy/wSuoAcu3lumwIICdSvOFg4XYq:GyusBnUvcyEO2hmf2K/AGmwIIESvOFgm

Score
7/10
discovery

Malware Config

Targets

    • Target

      driver-magician-6-0.exe

    • Size

      5.9MB

    • MD5

      17fc5c203f4e8b3e3b7a463fd939f57a

    • SHA1

      12ec48b63e89cb78fb47571e9c27b0a4e562bc82

    • SHA256

      b5b23f72ca2b97b42bc66040ffcfcddb8e5cf0e164464a5631ef2dd8f017985b

    • SHA512

      3ebfd9444dac6becfafcdf060bf543e2ab6765c2f9e6b78b7877fc21afea3e2e8ca6f21045baaa8f66ae0571ab688b4efcb177fb0dbc6c5839ceb4c9452a3de3

    • SSDEEP

      98304:FkLyusBFthivcrmEtw2r9mfuNy/wSuoAcu3lumwIICdSvOFg4XYq:GyusBnUvcyEO2hmf2K/AGmwIIESvOFgm

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks